Carbon Black EDR Unified View administrators determine whether each user must provide their own cluster API token to establish a connection with a cluster.

Each cluster can be configured for either shared or individual user access.

  • Shared API token – All Carbon Black EDR Unified View users access the cluster through the same shared token that is specified in the cluster configuration settings in Cluster Management. This is convenient, but it is not appropriate if you require different privileges for different Carbon Black EDR Unified View users.

  • Individual API token – Each user accesses the cluster through a unique token that is obtained from a user account on the cluster and added to settings for the cluster in that users My Profile/My Clusters page.

Note:
  • The authentication choice for each cluster affects all users. You cannot require some users to provide individual tokens and have other users authenticate by using a shared token for the same cluster.

  • There is no relationship between the API token for a Carbon Black EDR Unified View user account and the API token for a user account on a cluster, even if they are for the same person. Only cluster API tokens can be used for Carbon Black EDR Unified View authentication.